1 # Generated with generate_ssl_tests.pl
5 test-0 = 0-server-auth-flex
6 test-1 = 1-client-auth-flex-request
7 test-2 = 2-client-auth-flex-require-fail
8 test-3 = 3-client-auth-flex-require
9 test-4 = 4-client-auth-flex-noroot
10 test-5 = 5-server-auth-TLSv1
11 test-6 = 6-client-auth-TLSv1-request
12 test-7 = 7-client-auth-TLSv1-require-fail
13 test-8 = 8-client-auth-TLSv1-require
14 test-9 = 9-client-auth-TLSv1-noroot
15 test-10 = 10-server-auth-TLSv1.1
16 test-11 = 11-client-auth-TLSv1.1-request
17 test-12 = 12-client-auth-TLSv1.1-require-fail
18 test-13 = 13-client-auth-TLSv1.1-require
19 test-14 = 14-client-auth-TLSv1.1-noroot
20 test-15 = 15-server-auth-TLSv1.2
21 test-16 = 16-client-auth-TLSv1.2-request
22 test-17 = 17-client-auth-TLSv1.2-require-fail
23 test-18 = 18-client-auth-TLSv1.2-require
24 test-19 = 19-client-auth-TLSv1.2-noroot
25 # ===========================================================
28 ssl_conf = 0-server-auth-flex-ssl
30 [0-server-auth-flex-ssl]
31 server = 0-server-auth-flex-server
32 client = 0-server-auth-flex-client
34 [0-server-auth-flex-server]
35 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
36 CipherString = DEFAULT
37 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
39 [0-server-auth-flex-client]
40 CipherString = DEFAULT
41 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
45 ExpectedResult = Success
48 # ===========================================================
50 [1-client-auth-flex-request]
51 ssl_conf = 1-client-auth-flex-request-ssl
53 [1-client-auth-flex-request-ssl]
54 server = 1-client-auth-flex-request-server
55 client = 1-client-auth-flex-request-client
57 [1-client-auth-flex-request-server]
58 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
59 CipherString = DEFAULT
60 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
63 [1-client-auth-flex-request-client]
64 CipherString = DEFAULT
65 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
69 ExpectedResult = Success
72 # ===========================================================
74 [2-client-auth-flex-require-fail]
75 ssl_conf = 2-client-auth-flex-require-fail-ssl
77 [2-client-auth-flex-require-fail-ssl]
78 server = 2-client-auth-flex-require-fail-server
79 client = 2-client-auth-flex-require-fail-client
81 [2-client-auth-flex-require-fail-server]
82 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
83 CipherString = DEFAULT
84 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
85 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
88 [2-client-auth-flex-require-fail-client]
89 CipherString = DEFAULT
90 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
94 ExpectedResult = ServerFail
95 ExpectedServerAlert = HandshakeFailure
98 # ===========================================================
100 [3-client-auth-flex-require]
101 ssl_conf = 3-client-auth-flex-require-ssl
103 [3-client-auth-flex-require-ssl]
104 server = 3-client-auth-flex-require-server
105 client = 3-client-auth-flex-require-client
107 [3-client-auth-flex-require-server]
108 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
109 CipherString = DEFAULT
110 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
111 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
114 [3-client-auth-flex-require-client]
115 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
116 CipherString = DEFAULT
117 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
118 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
122 ExpectedResult = Success
125 # ===========================================================
127 [4-client-auth-flex-noroot]
128 ssl_conf = 4-client-auth-flex-noroot-ssl
130 [4-client-auth-flex-noroot-ssl]
131 server = 4-client-auth-flex-noroot-server
132 client = 4-client-auth-flex-noroot-client
134 [4-client-auth-flex-noroot-server]
135 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
136 CipherString = DEFAULT
137 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
140 [4-client-auth-flex-noroot-client]
141 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
142 CipherString = DEFAULT
143 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
144 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
148 ExpectedResult = ServerFail
149 ExpectedServerAlert = UnknownCA
152 # ===========================================================
154 [5-server-auth-TLSv1]
155 ssl_conf = 5-server-auth-TLSv1-ssl
157 [5-server-auth-TLSv1-ssl]
158 server = 5-server-auth-TLSv1-server
159 client = 5-server-auth-TLSv1-client
161 [5-server-auth-TLSv1-server]
162 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
163 CipherString = DEFAULT
166 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
168 [5-server-auth-TLSv1-client]
169 CipherString = DEFAULT
172 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
176 ExpectedResult = Success
179 # ===========================================================
181 [6-client-auth-TLSv1-request]
182 ssl_conf = 6-client-auth-TLSv1-request-ssl
184 [6-client-auth-TLSv1-request-ssl]
185 server = 6-client-auth-TLSv1-request-server
186 client = 6-client-auth-TLSv1-request-client
188 [6-client-auth-TLSv1-request-server]
189 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
190 CipherString = DEFAULT
193 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
196 [6-client-auth-TLSv1-request-client]
197 CipherString = DEFAULT
200 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
204 ExpectedResult = Success
207 # ===========================================================
209 [7-client-auth-TLSv1-require-fail]
210 ssl_conf = 7-client-auth-TLSv1-require-fail-ssl
212 [7-client-auth-TLSv1-require-fail-ssl]
213 server = 7-client-auth-TLSv1-require-fail-server
214 client = 7-client-auth-TLSv1-require-fail-client
216 [7-client-auth-TLSv1-require-fail-server]
217 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
218 CipherString = DEFAULT
221 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
222 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
225 [7-client-auth-TLSv1-require-fail-client]
226 CipherString = DEFAULT
229 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
233 ExpectedResult = ServerFail
234 ExpectedServerAlert = HandshakeFailure
237 # ===========================================================
239 [8-client-auth-TLSv1-require]
240 ssl_conf = 8-client-auth-TLSv1-require-ssl
242 [8-client-auth-TLSv1-require-ssl]
243 server = 8-client-auth-TLSv1-require-server
244 client = 8-client-auth-TLSv1-require-client
246 [8-client-auth-TLSv1-require-server]
247 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
248 CipherString = DEFAULT
251 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
252 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
255 [8-client-auth-TLSv1-require-client]
256 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
257 CipherString = DEFAULT
260 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
261 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
265 ExpectedResult = Success
268 # ===========================================================
270 [9-client-auth-TLSv1-noroot]
271 ssl_conf = 9-client-auth-TLSv1-noroot-ssl
273 [9-client-auth-TLSv1-noroot-ssl]
274 server = 9-client-auth-TLSv1-noroot-server
275 client = 9-client-auth-TLSv1-noroot-client
277 [9-client-auth-TLSv1-noroot-server]
278 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
279 CipherString = DEFAULT
282 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
285 [9-client-auth-TLSv1-noroot-client]
286 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
287 CipherString = DEFAULT
290 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
291 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
295 ExpectedResult = ServerFail
296 ExpectedServerAlert = UnknownCA
299 # ===========================================================
301 [10-server-auth-TLSv1.1]
302 ssl_conf = 10-server-auth-TLSv1.1-ssl
304 [10-server-auth-TLSv1.1-ssl]
305 server = 10-server-auth-TLSv1.1-server
306 client = 10-server-auth-TLSv1.1-client
308 [10-server-auth-TLSv1.1-server]
309 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
310 CipherString = DEFAULT
311 MaxProtocol = TLSv1.1
312 MinProtocol = TLSv1.1
313 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
315 [10-server-auth-TLSv1.1-client]
316 CipherString = DEFAULT
317 MaxProtocol = TLSv1.1
318 MinProtocol = TLSv1.1
319 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
323 ExpectedResult = Success
326 # ===========================================================
328 [11-client-auth-TLSv1.1-request]
329 ssl_conf = 11-client-auth-TLSv1.1-request-ssl
331 [11-client-auth-TLSv1.1-request-ssl]
332 server = 11-client-auth-TLSv1.1-request-server
333 client = 11-client-auth-TLSv1.1-request-client
335 [11-client-auth-TLSv1.1-request-server]
336 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
337 CipherString = DEFAULT
338 MaxProtocol = TLSv1.1
339 MinProtocol = TLSv1.1
340 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
343 [11-client-auth-TLSv1.1-request-client]
344 CipherString = DEFAULT
345 MaxProtocol = TLSv1.1
346 MinProtocol = TLSv1.1
347 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
351 ExpectedResult = Success
354 # ===========================================================
356 [12-client-auth-TLSv1.1-require-fail]
357 ssl_conf = 12-client-auth-TLSv1.1-require-fail-ssl
359 [12-client-auth-TLSv1.1-require-fail-ssl]
360 server = 12-client-auth-TLSv1.1-require-fail-server
361 client = 12-client-auth-TLSv1.1-require-fail-client
363 [12-client-auth-TLSv1.1-require-fail-server]
364 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
365 CipherString = DEFAULT
366 MaxProtocol = TLSv1.1
367 MinProtocol = TLSv1.1
368 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
369 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
372 [12-client-auth-TLSv1.1-require-fail-client]
373 CipherString = DEFAULT
374 MaxProtocol = TLSv1.1
375 MinProtocol = TLSv1.1
376 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
380 ExpectedResult = ServerFail
381 ExpectedServerAlert = HandshakeFailure
384 # ===========================================================
386 [13-client-auth-TLSv1.1-require]
387 ssl_conf = 13-client-auth-TLSv1.1-require-ssl
389 [13-client-auth-TLSv1.1-require-ssl]
390 server = 13-client-auth-TLSv1.1-require-server
391 client = 13-client-auth-TLSv1.1-require-client
393 [13-client-auth-TLSv1.1-require-server]
394 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
395 CipherString = DEFAULT
396 MaxProtocol = TLSv1.1
397 MinProtocol = TLSv1.1
398 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
399 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
402 [13-client-auth-TLSv1.1-require-client]
403 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
404 CipherString = DEFAULT
405 MaxProtocol = TLSv1.1
406 MinProtocol = TLSv1.1
407 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
408 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
412 ExpectedResult = Success
415 # ===========================================================
417 [14-client-auth-TLSv1.1-noroot]
418 ssl_conf = 14-client-auth-TLSv1.1-noroot-ssl
420 [14-client-auth-TLSv1.1-noroot-ssl]
421 server = 14-client-auth-TLSv1.1-noroot-server
422 client = 14-client-auth-TLSv1.1-noroot-client
424 [14-client-auth-TLSv1.1-noroot-server]
425 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
426 CipherString = DEFAULT
427 MaxProtocol = TLSv1.1
428 MinProtocol = TLSv1.1
429 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
432 [14-client-auth-TLSv1.1-noroot-client]
433 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
434 CipherString = DEFAULT
435 MaxProtocol = TLSv1.1
436 MinProtocol = TLSv1.1
437 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
438 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
442 ExpectedResult = ServerFail
443 ExpectedServerAlert = UnknownCA
446 # ===========================================================
448 [15-server-auth-TLSv1.2]
449 ssl_conf = 15-server-auth-TLSv1.2-ssl
451 [15-server-auth-TLSv1.2-ssl]
452 server = 15-server-auth-TLSv1.2-server
453 client = 15-server-auth-TLSv1.2-client
455 [15-server-auth-TLSv1.2-server]
456 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
457 CipherString = DEFAULT
458 MaxProtocol = TLSv1.2
459 MinProtocol = TLSv1.2
460 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
462 [15-server-auth-TLSv1.2-client]
463 CipherString = DEFAULT
464 MaxProtocol = TLSv1.2
465 MinProtocol = TLSv1.2
466 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
470 ExpectedResult = Success
473 # ===========================================================
475 [16-client-auth-TLSv1.2-request]
476 ssl_conf = 16-client-auth-TLSv1.2-request-ssl
478 [16-client-auth-TLSv1.2-request-ssl]
479 server = 16-client-auth-TLSv1.2-request-server
480 client = 16-client-auth-TLSv1.2-request-client
482 [16-client-auth-TLSv1.2-request-server]
483 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
484 CipherString = DEFAULT
485 MaxProtocol = TLSv1.2
486 MinProtocol = TLSv1.2
487 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
490 [16-client-auth-TLSv1.2-request-client]
491 CipherString = DEFAULT
492 MaxProtocol = TLSv1.2
493 MinProtocol = TLSv1.2
494 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
498 ExpectedResult = Success
501 # ===========================================================
503 [17-client-auth-TLSv1.2-require-fail]
504 ssl_conf = 17-client-auth-TLSv1.2-require-fail-ssl
506 [17-client-auth-TLSv1.2-require-fail-ssl]
507 server = 17-client-auth-TLSv1.2-require-fail-server
508 client = 17-client-auth-TLSv1.2-require-fail-client
510 [17-client-auth-TLSv1.2-require-fail-server]
511 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
512 CipherString = DEFAULT
513 MaxProtocol = TLSv1.2
514 MinProtocol = TLSv1.2
515 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
516 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
519 [17-client-auth-TLSv1.2-require-fail-client]
520 CipherString = DEFAULT
521 MaxProtocol = TLSv1.2
522 MinProtocol = TLSv1.2
523 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
527 ExpectedResult = ServerFail
528 ExpectedServerAlert = HandshakeFailure
531 # ===========================================================
533 [18-client-auth-TLSv1.2-require]
534 ssl_conf = 18-client-auth-TLSv1.2-require-ssl
536 [18-client-auth-TLSv1.2-require-ssl]
537 server = 18-client-auth-TLSv1.2-require-server
538 client = 18-client-auth-TLSv1.2-require-client
540 [18-client-auth-TLSv1.2-require-server]
541 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
542 CipherString = DEFAULT
543 MaxProtocol = TLSv1.2
544 MinProtocol = TLSv1.2
545 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
546 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/root-cert.pem
549 [18-client-auth-TLSv1.2-require-client]
550 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
551 CipherString = DEFAULT
552 MaxProtocol = TLSv1.2
553 MinProtocol = TLSv1.2
554 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
555 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
559 ExpectedResult = Success
562 # ===========================================================
564 [19-client-auth-TLSv1.2-noroot]
565 ssl_conf = 19-client-auth-TLSv1.2-noroot-ssl
567 [19-client-auth-TLSv1.2-noroot-ssl]
568 server = 19-client-auth-TLSv1.2-noroot-server
569 client = 19-client-auth-TLSv1.2-noroot-client
571 [19-client-auth-TLSv1.2-noroot-server]
572 Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
573 CipherString = DEFAULT
574 MaxProtocol = TLSv1.2
575 MinProtocol = TLSv1.2
576 PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
579 [19-client-auth-TLSv1.2-noroot-client]
580 Certificate = ${ENV::TEST_CERTS_DIR}/ee-client-chain.pem
581 CipherString = DEFAULT
582 MaxProtocol = TLSv1.2
583 MinProtocol = TLSv1.2
584 PrivateKey = ${ENV::TEST_CERTS_DIR}/ee-key.pem
585 VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
589 ExpectedResult = ServerFail
590 ExpectedServerAlert = UnknownCA